Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/08/14 6:52 p.m.2 views

Malicious code in mapbox-studio (npm)

The package mapbox-studio was found to contain malicious code...

7AI score
Exploits0
OSV
OSVadded 2025/08/14 6:52 p.m.1 views

MAL-2025-25912 Malicious code in mapbox-studio (npm)

The package mapbox-studio was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSVadded 2022/06/20 8:22 p.m.17 views

MAL-2022-4476 Malicious code in mapbox-studio-pro-fonts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fe184c4c51f61f287036c394d47e1acee2fa5b397efde30a69df40abfe963bfa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 8:22 p.m.2 views

Malicious code in mapbox-studio-pro-fonts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fe184c4c51f61f287036c394d47e1acee2fa5b397efde30a69df40abfe963bfa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 8:22 p.m.2 views

Malicious code in mapbox-studio-default-fonts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2f89940d67ecc912beb4510d0c28e80d664a00e725782dbeeb3c20882e75df42 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSVadded 2022/06/20 8:22 p.m.26 views

MAL-2022-4475 Malicious code in mapbox-studio-default-fonts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2f89940d67ecc912beb4510d0c28e80d664a00e725782dbeeb3c20882e75df42 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Hacker One
Hacker Oneadded 2015/04/02 12:56 a.m.35 views

Mapbox: Persistent cross-site scripting (XSS) in map attribution

Hello, I have found a Persistent Cross Site Scripting vulnerability when using a custom style uploaded by myself. Mapbox Studio allows create and upload styles for your maps. So if we create a new style with javascript code as attribution value it will be executed when loading a map that uses our...

4.3CVSS6.2AI score0.00164EPSS
Exploits1
Hacker One
Hacker Oneadded 2015/03/28 4:16 a.m.11 views

Mapbox: Stored xss in editor

On March 28th, 2015 @sahilsaif reported an issue with stored XSS in Mapbox Editor www.mapbox.com/editor. We deployed a fix for this issue on March 30th, 2015. On March 28th, 2015, I found a Stored XSS in Mapbox Editor. Which was hosted on https://mapbox.com/editor Mapbox Editor is now deprecated...

5.8AI score
Exploits0
Rows per page
Query Builder